GROUP

List

all

GROUPJ

and

GROUPS

NODES profiles

that

have a UACC value grea

than

or equal to READ, recording

the

profile

names and all keywords n

add

them

back

later. Then

delete

them. These

profiles

were

previousl

but

now

could

result

in failing jobs or unowned

SYSOUT.

Note that

GROU

GROUPS

NODES

profiles

with a

UACC

value

of

NONE

already

worked

and

sti

work

as

documented.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Step

2:

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Create the NODES profile *.GROUP%.* with UACC(READ) and

 

 

 

 

ADDMEM(&DFLTGRP), then do any necessary refresh

of in-storage profiles.

profile

causes

RACF

to use the default group

for

NJE

verification,

has

been propagated and possibly translated. This profile acts

as a

all

other

GROUP

NODES

profiles

have

been verified.

 

 

 

 

Step

3:

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Add

more specific GROUP NODES profiles. Perhaps you are adding GROUP

NODES

profiles

for the

first OS/390time; Securitysee

Server

(RACF)

Security

 

 

Administrator's Guidefor their intended uses and

externals. Take

note

of

batch job

failures

or

SYSOUT

owners

assigned

by

SYSOUT

FAILSAFE

proces

(SYSOUT message IRR808I will be displayed). Correct any problems in y profiles to accurately reflect corresponding users and groups on the nodes.

Step 4:

When your installation is confident that the GROUP profiles are set change the one from step 2 to a UACC(NONE) with no ADDMEM. This generic profile now fails jobs or disowns SYSOUT when a more specific profile

APAR OW15408

If you are using NODES class

profilesnodeidof.RUSERthe.nodeidform

to allow

JOBs

to

enter

a

node, you

can

remove

those RUSER

nodes

profiles. T

NODES

profile

has

been

used

as

a problem bypass

by

users, to allow

a second

NJE

Job

into

the

JES

internal

reader

using

two

/*XEQs.

Chapter 12. NJE Considerations59

Page 83
Image 83
IBM GC28-1920-01 manual APAR OW15408, Server, Racf, Security, Group, Failsafe